Just to clarify, is 0.9.8e vulnerable? It contains the same code, but is there something else which mitigates this?
Eric
- OpenSSL SSL_get_shared_ciphers() off-by-one buffer overflow Moritz Jodeit
- Re: OpenSSL SSL_get_shared_ciphers() off-by-one buffer ... snagg
- Re: OpenSSL SSL_get_shared_ciphers() off-by-one buffer ... ejc
